Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/YyLOoA2GbSEXc8iOWdZ4nuX4ifM.roa
File: YyLOoA2GbSEXc8iOWdZ4nuX4ifM.roa (raw, json)
Hash identifier: 5UioJOkfnNzs/Y6VO+JexBtbbX2MNDBD0mzMmXpv0/c=
Subject key identifier: 63:22:CE:A0:0D:86:6D:21:17:73:C8:8E:59:D6:78:9E:E5:F8:89:F3
Certificate issuer: /CN=5c412f72ea7410581906488ba77db7b82267e4aa
Certificate serial: 018CC94D90914A967093FC980BAA82C3FE41
Authority key identifier: 5C:41:2F:72:EA:74:10:58:19:06:48:8B:A7:7D:B7:B8:22:67:E4:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEEvcup0EFgZBkiLp323uCJn5Ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/YyLOoA2GbSEXc8iOWdZ4nuX4ifM.roa
Signing time: Tue 02 Jan 2024 08:32:32 +0000
ROA not before: Tue 02 Jan 2024 08:32:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 89.106.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:90:91:4a:96:70:93:fc:98:0b:aa:82:c3:fe:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c412f72ea7410581906488ba77db7b82267e4aa
Validity
Not Before: Jan 2 08:32:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6322cea00d866d211773c88e59d6789ee5f889f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e5:16:0a:cb:98:c4:21:9a:0a:67:f4:43:8e:
0b:4a:18:a8:96:3c:1f:ec:b4:5e:62:9d:8a:8c:48:
79:6f:5a:4d:72:a4:86:72:d5:67:69:b8:2e:81:2d:
c7:f1:9c:6a:14:11:4e:cb:44:c2:7c:e5:d3:01:01:
7f:19:34:c4:45:5f:ac:f5:ae:b2:33:25:ff:82:e3:
0d:8a:d1:cb:fb:ec:e3:b3:0c:b0:2b:36:99:ea:f7:
e7:ec:35:d9:8e:e2:7f:96:f3:d7:67:6d:1c:05:1f:
7f:8e:6e:f5:43:02:f0:1c:5d:a3:3e:f5:1b:ae:59:
0b:25:54:e3:be:61:0b:d2:d8:f0:44:13:b2:a0:a8:
22:e9:22:a3:96:c0:da:2a:fa:dc:b3:f5:ed:67:7d:
22:cf:3c:de:7f:81:c6:44:55:e4:96:14:2d:be:6d:
b4:61:2d:16:4c:8b:d5:2e:f4:2e:c0:6b:35:bb:04:
10:f4:92:15:b5:21:af:f7:9b:e6:ae:e1:7d:61:51:
69:9e:14:d8:09:f5:45:ac:8b:be:0b:7c:ed:be:e8:
6b:72:40:d8:86:99:66:5c:37:b6:df:c0:07:07:b2:
22:f0:93:58:2a:85:7a:08:e9:c1:9a:41:91:7f:57:
ac:ad:a2:be:c3:43:1e:ff:f9:66:49:44:88:0c:e8:
fa:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:22:CE:A0:0D:86:6D:21:17:73:C8:8E:59:D6:78:9E:E5:F8:89:F3
X509v3 Authority Key Identifier:
keyid:5C:41:2F:72:EA:74:10:58:19:06:48:8B:A7:7D:B7:B8:22:67:E4:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEEvcup0EFgZBkiLp323uCJn5Ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/YyLOoA2GbSEXc8iOWdZ4nuX4ifM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/XEEvcup0EFgZBkiLp323uCJn5Ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.202.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b8:48:8b:4f:f4:25:d1:d9:7d:7b:d6:4e:e5:2f:26:95:b4:
79:50:c0:9d:a5:1b:de:f1:e0:3d:d6:ff:ca:df:14:f4:45:63:
6b:2a:78:99:b4:a6:bb:59:bb:11:52:9d:dd:b6:fc:75:34:25:
ae:f0:d7:98:c1:d8:41:63:c9:cd:dc:c4:fd:ad:07:34:9e:3d:
ae:0d:e2:ba:2a:a2:95:60:25:87:5d:33:1c:f5:eb:1c:64:7c:
fe:13:8b:ca:7e:1c:76:b1:d0:5e:20:36:02:5b:43:45:0b:fd:
3c:85:05:fb:79:f8:e7:d1:6b:af:2e:80:01:d1:57:c2:56:21:
a2:e8:35:da:10:a5:c6:42:09:b2:3a:40:d0:fa:f0:74:89:bb:
53:4e:f7:74:06:d2:58:5a:51:1f:43:a6:9a:1d:79:7d:47:7b:
26:a6:98:38:a9:75:1e:fc:50:6a:d3:9e:83:e4:f6:83:8b:36:
93:2b:68:c6:be:d1:45:c3:7c:05:e2:60:13:af:06:8e:60:19:
07:ad:38:07:b9:99:52:f1:58:80:76:0b:cc:94:4a:20:cb:f7:
5a:4c:67:0c:92:e7:2e:8b:17:ac:8a:ca:6d:bf:80:ae:7d:bc:
2b:3d:40:d6:4b:8b:94:94:c2:08:5b:87:21:56:25:c8:6e:ed:
78:ce:d7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org